Summary: The Security Engineer-Forgerock role involves providing expertise in cloud security, particularly with AWS, and managing security protocols and tools within a DevSecOps framework. The position requires hands-on experience with ForgeRock IAM solutions and a strong background in penetration testing and vulnerability management. The role is based in London with a hybrid working arrangement, focusing on proactive defense against cyber threats. The contract duration is 6 months.

Key Responsibilities:

• Implement and manage AWS security controls, policies, and automation.
• Utilize role-based and attribute-based access control approaches and tools.
• Conduct advanced threat modeling, SOC operations, and forensic analysis.
• Secure microservices, APIs, and integrate security into the DevSecOps lifecycle.
• Perform vulnerability scanning, patching, and vendor management for security.
• Manage and support penetration testing efforts.
• Identify and communicate security risks to executive leadership.
• Collaborate with engineering, product, and CISO teams to embed security by design.

Key Skills:

• Deep knowledge of AWS security controls and automation.
• Experience with ForgeRock IAM solutions (PingGateway, PingAM, PingIDM, PingDS).
• Hands-on coding experience in JavaScript, Java, or Python.
• Expertise in vulnerability management and penetration testing.
• Experience with HSM and CSM tools, and certificate lifecycle management.
• Ability to automate security workflows using GitLab CI/CD pipelines.
• 5+ years of experience in security roles and 10+ years in penetration testing.

Salary (Rate): undetermined

City: London

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: undetermined

Seniority Level: undetermined

Industry: IT